Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP prior to 5.5.22 and 5.6.x prior to 5.6.6 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 12.04 |
||
debian debian linux 7.0 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 10.04 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
php php |
||
apple mac os x |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux hpc node 7.0 |
||
redhat enterprise linux server eus 7.1 |
||
redhat enterprise linux hpc node eus 7.1 |